I am a programmer but have now a role looking after a linux based network so this question may be a little silly. All P.C.s go through squid as the proxy server, squid is not set to block the normal "trusted" ports e.g. 80 (http) and I have also changed it to allow higher ports e.g. 4040. but when I try to open a URL containing this port number squid blocks it, e.g.

1 Answer
1

Allowed ports are usually configured by the Safe_portsacl. The configuration file should have an ACL configuring a ports list. This is used in an http_access rule. My configuration has the rule http_access deny !Safe_ports.

The Debian system may be running an iptables firewall which prevents outgoing access to port 4040.

EDIT: It may be easier to read the configuration if you strip comments and blank lines from it. This should reduce the number lines you are looking at to under 50 or so. Commands to strip down the file and extract the acl data are:

That is how the ACL is configured, I'll look into the iptables rules.
–
Tim the EnchanterMar 26 '11 at 8:24

@Tim: Try using telnet to the port from the Debian server to the destination. If the port is blocked, you know it is not squid.
–
BillThor Mar 26 '11 at 17:12

O.K. I have tried to telnet it doesn't let me, I have checked the IPtables configuration on the squid server, there are no rules. Could it be the default gateway blocking the port?
–
Tim the EnchanterMar 28 '11 at 8:51

@BillThor I think it must be squid because firefox tells me that the proxy server is refusing connections, when I don't use the proxy, I can connect to the port.
–
Tim the EnchanterMar 28 '11 at 9:30

@Tim: Updated. Can you telnet to the site from the squid server? If not it is likely a firewall issue.
–
BillThor Mar 28 '11 at 13:44